In the spirit of Cybersecurity Awareness Month's theme, See Yourself in Cyber, you need to make sure everyone in your business understands they have a role to play in protecting your business (and themselves) from cyberattack and data breaches. Ask your employees to review these good security practices so that they are aware of how to protect their network, their devices, your business data and themselves from security breaches, malicious software, scammers, etc. Note that many of these measures outlined may be your employees' responsibility if you have many more people now working from home and using their home networks and devices. Make sure everyone is aware of what is expected for secure and acceptable use of your systems.
If you haven't already established policies for working from home, consider specifying the following:
- Pay due care and attention when moving computers, mobile devices or equipment between office locations and home. Do not leave unattended in public view.
- Do not copy business related data to computer systems or devices that have not been agreed / approved for use for remote and home working.
- Do not attempt to install additional software to any company-owned device that has not been agreed / approved for use.
- Do not attempt to change the configuration of any company-owned device.
- Do not attempt to circumvent or disable security measures set on computer systems or devices.
- Make sure that your computer and device screens are locked when left unattended.
- Do not share computer or mobile devices used for work with others.
- Do not use the computers or mobile devices used for work for non-business purposes or allow anyone else to do so
- Take steps to ensure others in your household don't see or have access to any business-related information (which could include company sensitive information, personal data or payment card details
- When discussing business related information try to make sure no one can overhear your conversation or call
- Take steps to ensure everyone in your household knows not to do anything with any business-related information they overhear or may come across, e.g. make copies of it, throw it away in the household waste, tell their friends, share on social media, etc.
Maintain awareness of cyber risks:
- Monitor alerts and security bulletins from reliable sources such as:
- FBI Cyber Crime News
- US National Cyber Awareness System
- US Cybersecurity and Infrastructure Security Agency
- UK National Cyber Security Center
- Review warnings of new scams, new cyber threats and attack methods
- Consider the risk to your business and take any necessary steps to improve security measures and protect your business.
VikingCloud's Managed Security Services provides education to employees on security best practices. Need some help? Reach out to us here.